Microsoft's GitHub account allegedly hacked, 500GB stolen

栏目: IT技术 · 发布时间: 4年前

内容简介:A hacker claims to have stolen over 500GB of data from Microsoft's private GitHub repositories, BleepingComputer has learned.This evening, a hacker going by the name Shiny Hunters contacted BleepingComputer to tell us they had hacked into the Microsoft Git

Microsoft's GitHub account allegedly hacked, 500GB stolen

A hacker claims to have stolen over 500GB of data from Microsoft's private GitHub repositories, BleepingComputer has learned.

This evening, a hacker going by the name Shiny Hunters contacted BleepingComputer to tell us they had hacked into the Microsoft GitHub account, gaining full access to the software giant's 'Private' repositories.

Microsoft's GitHub account allegedly hacked, 500GB stolen
Actor's proof of access to Microsoft's private GitHub repos

The individual told us that they then downloaded 500GB of private projects and initially planned on selling it, but has now decided to leak it for free

Based on the file stamps in the leaked files, the breach may have occurred on March 28th, 2020.

Microsoft's GitHub account allegedly hacked, 500GB stolen
Leaked data listing showing the breach date

Shiny Hunters told BleepingComputer he no longer has access to the account.

Private repositories leaked

As a teaser, the hacker offered 1GB of files on a hacker forum for registered members to use site 'credits' to gain access to the leaked data.

As some of the leaked files contain Chinese text or references to latelee.org or Chinese text, other threat actors on the forum do not feel that the data is real.

In a directory listing and samples of other private repositories sent to BleepingComputer, the stolen data appears to be mostly code samples, test projects, an eBook, and other generic items.

Some private repositories look a bit more interesting such as ones named some 'wssd cloud agent', a The Rust/WinRT language projection', and a 'PowerSweep' PowerShell project.

Overall, from what was shared, there does not appear to be anything significant for Microsoft to worry about, such as Windows or Office source code.

Cyber intelligence firm Under the Breach, who saw the leak on the hacker forum, also does not think there is much to worry about.

They did express concern that private API keys or passwords could have accidentally been left behind in some of the private repositories like other developers have done in the past.

Microsoft's GitHub account allegedly hacked, 500GB stolen

Microsoft employee Sam Smith replied to Under the Breach's tweet stating that he thought the leak was fake as "Msft has a “rule” that GitHub repos must be public within 30 days."

BleepingComputer has contacted Microsoft to confirm if these are indeed legitimate files but have not received a reply.

This is a developing story.


以上所述就是小编给大家介绍的《Microsoft's GitHub account allegedly hacked, 500GB stolen》,希望对大家有所帮助,如果大家有任何疑问请给我留言,小编会及时回复大家的。在此也非常感谢大家对 码农网 的支持!

查看所有标签

猜你喜欢:

本站部分资源来源于网络,本站转载出于传递更多信息之目的,版权归原作者或者来源机构所有,如转载稿涉及版权问题,请联系我们

Developer's Guide to Social Programming

Developer's Guide to Social Programming

Mark D. Hawker / Addison-Wesley Professional / 2010-8-25 / USD 39.99

In The Developer's Guide to Social Programming, Mark Hawker shows developers how to build applications that integrate with the major social networking sites. Unlike competitive books that focus on a s......一起来看看 《Developer's Guide to Social Programming》 这本书的介绍吧!

UNIX 时间戳转换
UNIX 时间戳转换

UNIX 时间戳转换

RGB HSV 转换
RGB HSV 转换

RGB HSV 互转工具

HEX CMYK 转换工具
HEX CMYK 转换工具

HEX CMYK 互转工具